Forem: Eden Sages The latest articles on Forem by Eden Sages (@eden_sages_f3cdc5d7c8d0). https://forem.com/eden_sages_f3cdc5d7c8d0 https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F3649559%2Fd5cdc844-01a2-4ef0-b930-50afce742857.png Forem: Eden Sages https://forem.com/eden_sages_f3cdc5d7c8d0 en Why Every Startup Needs Automated Code Review Eden Sages Wed, 10 Dec 2025 19:58:48 +0000 https://forem.com/eden_sages_f3cdc5d7c8d0/why-every-startup-needs-automated-code-review-5bc5 https://forem.com/eden_sages_f3cdc5d7c8d0/why-every-startup-needs-automated-code-review-5bc5 <h1> Why Every Startup Needs Automated Code Review </h1> <p>You're moving fast. Your runway is short. Every hour counts.</p> <p>So why would you spend precious engineering time on manual code reviews?</p> <p>Here's the truth: <strong>skipping code review doesn't save time—it costs you later.</strong> But there's a smarter way than blocking your team with lengthy review cycles.</p> <h2> The Startup Dilemma </h2> <p>Startups face a brutal tradeoff:</p> <ul> <li> <strong>Move fast</strong> → ship bugs, accumulate tech debt</li> <li> <strong>Review everything</strong> → slow down, miss market windows</li> </ul> <p>Most choose speed. And most pay for it later with production outages, security breaches, and painful rewrites.</p> <p>But this is a false choice.</p> <h2> Why Manual Code Review Breaks Down </h2> <p>Manual code review works great—until it doesn't:</p> <ul> <li> <strong>Your senior dev becomes a bottleneck.</strong> Every PR waits in their queue.</li> <li> <strong>Review quality varies.</strong> Tired reviewers miss obvious issues.</li> <li> <strong>Context switching kills productivity.</strong> Engineers lose hours jumping between coding and reviewing.</li> <li> <strong>Security expertise is scarce.</strong> Most developers aren't security specialists.</li> </ul> <p>At 3 engineers, manual review is manageable. At 10, it's painful. At 30, it's impossible.</p> <h2> What Automated Code Review Actually Does </h2> <p>Automated code review tools scan every commit for:</p> <ul> <li> <strong>Security vulnerabilities</strong> — SQL injection, XSS, hardcoded secrets</li> <li> <strong>Bug patterns</strong> — null references, race conditions, memory leaks</li> <li> <strong>Code quality</strong> — complexity, duplication, maintainability issues</li> <li> <strong>Dependency risks</strong> — outdated packages with known CVEs</li> </ul> <p>The key: <strong>automation handles the repetitive stuff so humans can focus on architecture, logic, and design decisions.</strong></p> <h2> The ROI Is Clear </h2> <p>Consider this:</p> <ul> <li>Average cost to fix a bug in development: <strong>$100</strong> </li> <li>Average cost to fix that same bug in production: <strong>$10,000</strong> </li> </ul> <p>A single prevented production incident pays for a year of automated tooling.</p> <p>But beyond dollars, there's velocity. When your CI pipeline catches issues automatically, developers get instant feedback. No waiting for reviewers. No context switching. No blocked PRs.</p> <h2> What to Look For in a Solution </h2> <p>Not all automated review tools are equal. The best ones:</p> <ol> <li> <strong>Integrate with your workflow</strong> — GitHub, GitLab, Bitbucket</li> <li> <strong>Run on every PR</strong> — not just scheduled scans</li> <li> <strong>Prioritize findings</strong> — critical issues first, not noise</li> <li> <strong>Explain the problems</strong> — teach developers, don't just flag</li> <li> <strong>Cover security deeply</strong> — beyond just linting</li> </ol> <h2> Getting Started </h2> <p>You don't need to overhaul your process overnight:</p> <ol> <li> <strong>Start with security scanning</strong> — the highest-impact, lowest-effort win</li> <li> <strong>Add it to CI/CD</strong> — make it automatic, not optional</li> <li> <strong>Review the findings weekly</strong> — track trends, not just individual issues</li> <li> <strong>Iterate</strong> — adjust rules as your codebase evolves</li> </ol> <p>Tools like <strong>SAGE</strong> can plug into your existing workflow and start catching vulnerabilities immediately—no configuration headaches, no learning curve.</p> <h2> The Bottom Line </h2> <p>You can't afford to choose between speed and quality. Automated code review gives you both.</p> <p>Your competitors are shipping fast AND shipping safe. The question isn't whether you can afford automated code review—it's whether you can afford not to have it.</p> <p><em>What's your code review process? Share your experience in the comments!</em></p> startup devops productivity automation 5 Security Checks Every Developer Should Run Before Pushing Code Eden Sages Wed, 10 Dec 2025 16:59:37 +0000 https://forem.com/eden_sages_f3cdc5d7c8d0/5-security-checks-every-developer-should-run-before-pushing-code-4fk1 https://forem.com/eden_sages_f3cdc5d7c8d0/5-security-checks-every-developer-should-run-before-pushing-code-4fk1 <h1> 5 Security Checks Every Developer Should Run Before Pushing Code </h1> <p>As developers, we often focus on writing clean, functional code. However, one thing we can't overlook is security. A single oversight can lead to vulnerabilities that compromise user trust and expose sensitive data. In this article, I'll walk through five essential security checks every developer should perform before pushing their code. These steps are not just best practices—they're critical for protecting your application.</p> <h2> 1. Validate All User Inputs </h2> <p><strong>Why it matters:</strong><br><br> Input validation is the first line of defense against attacks like injection vulnerabilities (e.g., SQL, XSS). If user input isn't properly validated, attackers can inject malicious code or manipulate data to access unauthorized information.</p> <h3> How to do it: </h3> <ul> <li> <strong>Use pre-built libraries:</strong> Frameworks like Django and Ruby on Rails have built-in validation features.</li> <li> <strong>Sanitize inputs:</strong> Remove or escape special characters that could be used in attacks.</li> </ul> <h4> Example (Insecure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># Vulnerable code: No input validation </span><span class="n">user_input</span> <span class="o">=</span> <span class="n">request</span><span class="p">.</span><span class="n">form</span><span class="p">[</span><span class="sh">'</span><span class="s">name</span><span class="sh">'</span><span class="p">]</span> <span class="nf">print</span><span class="p">(</span><span class="n">user_input</span><span class="p">)</span> </code></pre> </div> <h4> Example (Secure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># Safe practice: Use validation and sanitization </span><span class="kn">from</span> <span class="n">flask</span> <span class="kn">import</span> <span class="n">Flask</span><span class="p">,</span> <span class="n">request</span> <span class="kn">from</span> <span class="n">bleach</span> <span class="kn">import</span> <span class="n">clean</span> <span class="n">app</span> <span class="o">=</span> <span class="nc">Flask</span><span class="p">(</span><span class="n">__name__</span><span class="p">)</span> <span class="nd">@app.route</span><span class="p">(</span><span class="sh">'</span><span class="s">/submit</span><span class="sh">'</span><span class="p">,</span> <span class="n">methods</span><span class="o">=</span><span class="p">[</span><span class="sh">'</span><span class="s">POST</span><span class="sh">'</span><span class="p">])</span> <span class="k">def</span> <span class="nf">submit</span><span class="p">():</span> <span class="n">user_input</span> <span class="o">=</span> <span class="n">request</span><span class="p">.</span><span class="n">form</span><span class="p">[</span><span class="sh">'</span><span class="s">name</span><span class="sh">'</span><span class="p">]</span> <span class="n">safe_input</span> <span class="o">=</span> <span class="nf">clean</span><span class="p">(</span><span class="n">user_input</span><span class="p">)</span> <span class="k">return</span> <span class="sa">f</span><span class="sh">"</span><span class="s">Hello, </span><span class="si">{</span><span class="n">safe_input</span><span class="si">}</span><span class="sh">"</span> <span class="k">if</span> <span class="n">__name__</span> <span class="o">==</span> <span class="sh">'</span><span class="s">__main__</span><span class="sh">'</span><span class="p">:</span> <span class="n">app</span><span class="p">.</span><span class="nf">run</span><span class="p">()</span> </code></pre> </div> <h3> Tools: </h3> <ul> <li> <strong>Semgrep:</strong> A tool that scans code for security issues and enforces best practices.</li> <li> <strong>OWASP ZAP:</strong> An open-source web application security scanner.</li> </ul> <h2> 2. Prevent SQL Injection </h2> <p><strong>Why it matters:</strong><br><br> SQL injection attacks occur when an attacker manipulates database queries to access or modify data. This can lead to data breaches or unauthorized database access.</p> <h3> How to do it: </h3> <ul> <li> <strong>Use prepared statements:</strong> These separate code from data, preventing injection.</li> <li><strong>Avoid using <code>mysqli</code> functions directly; use ORM libraries instead.</strong></li> </ul> <h4> Example (Insecure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1"># Vulnerable code: Directly injecting user input into SQL</span> <span class="nv">$username</span> <span class="o">=</span> <span class="nv">$_GET</span><span class="p">[</span><span class="s1">'username'</span><span class="p">];</span> <span class="nv">$sql</span> <span class="o">=</span> <span class="s2">"SELECT * FROM users WHERE username = '</span><span class="nv">$username</span><span class="s2">'"</span><span class="p">;</span> </code></pre> </div> <h4> Example (Secure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight php"><code><span class="c1"># Safe practice: Use prepared statements with placeholders</span> <span class="nv">$stmt</span> <span class="o">=</span> <span class="nv">$conn</span><span class="o">-&gt;</span><span class="nf">prepare</span><span class="p">(</span><span class="s2">"SELECT * FROM users WHERE username = ?"</span><span class="p">);</span> <span class="nv">$stmt</span><span class="o">-&gt;</span><span class="nf">bind_param</span><span class="p">(</span><span class="s1">'s'</span><span class="p">,</span> <span class="nv">$username</span><span class="p">);</span> <span class="nv">$stmt</span><span class="o">-&gt;</span><span class="nf">execute</span><span class="p">();</span> </code></pre> </div> <h3> Tools: </h3> <ul> <li> <strong>Bandit:</strong> A Python AST-based tool that checks for security issues in code.</li> <li> <strong>Snyk:</strong> A developer-friendly tool that integrates with your CI/CD pipeline to detect vulnerabilities.</li> </ul> <h2> 3. Handle Errors Safely </h2> <p><strong>Why it matters:</strong><br><br> Error messages can leak sensitive information if not handled properly. Attackers often use these leaks to gain insights into system configurations or data structures.</p> <h3> How to do it: </h3> <ul> <li> <strong>Log errors internally:</strong> Avoid exposing error details in responses.</li> <li><strong>Redact sensitive information from logs and messages.</strong></li> </ul> <h4> Example (Insecure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># Vulnerable code: Revealing database connection details </span><span class="k">try</span><span class="p">:</span> <span class="c1"># Database operation </span><span class="k">except</span> <span class="nb">Exception</span> <span class="k">as</span> <span class="n">e</span><span class="p">:</span> <span class="nf">print</span><span class="p">(</span><span class="sa">f</span><span class="sh">"</span><span class="s">Database error: </span><span class="si">{</span><span class="n">e</span><span class="si">}</span><span class="sh">"</span><span class="p">)</span> </code></pre> </div> <h4> Example (Secure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># Safe practice: Log errors without exposing sensitive data </span><span class="kn">import</span> <span class="n">logging</span> <span class="n">logging</span><span class="p">.</span><span class="nf">basicConfig</span><span class="p">(</span><span class="n">level</span><span class="o">=</span><span class="n">logging</span><span class="p">.</span><span class="n">INFO</span><span class="p">)</span> <span class="k">try</span><span class="p">:</span> <span class="c1"># Database operation </span><span class="k">except</span> <span class="nb">Exception</span> <span class="k">as</span> <span class="n">e</span><span class="p">:</span> <span class="n">logging</span><span class="p">.</span><span class="nf">error</span><span class="p">(</span><span class="sa">f</span><span class="sh">"</span><span class="s">Database connection failed. Details redacted.</span><span class="sh">"</span><span class="p">)</span> </code></pre> </div> <h3> Tools: </h3> <ul> <li> <strong>Sentry:</strong> For monitoring and handling exceptions in production.</li> <li> <strong>Datadog:</strong> Provides error tracking with sensitive data masking.</li> </ul> <h2> 4. Keep Dependencies Updated </h2> <p><strong>Why it matters:</strong><br><br> Outdated dependencies can introduce vulnerabilities. Attackers often exploit known issues in outdated libraries to gain access to systems.</p> <h3> How to do it: </h3> <ul> <li> <strong>Regularly update packages:</strong> Use tools like <code>npm audit</code>, <code>pip install --upgrade</code>, or <code>yarn up</code>.</li> <li><strong>Monitor for CVEs (Common Vulnerabilities and Exposures).</strong></li> </ul> <h4> Example (Insecure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="err">#</span><span class="w"> </span><span class="err">package.json</span><span class="w"> </span><span class="err">with</span><span class="w"> </span><span class="err">outdated</span><span class="w"> </span><span class="err">dependencies</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"name"</span><span class="p">:</span><span class="w"> </span><span class="s2">"my-app"</span><span class="p">,</span><span class="w"> </span><span class="nl">"version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"1.0.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dependencies"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"express"</span><span class="p">:</span><span class="w"> </span><span class="s2">"^4.16.1"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h4> Example (Secure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight json"><code><span class="err">#</span><span class="w"> </span><span class="err">Updated</span><span class="w"> </span><span class="err">dependencies</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"name"</span><span class="p">:</span><span class="w"> </span><span class="s2">"my-app"</span><span class="p">,</span><span class="w"> </span><span class="nl">"version"</span><span class="p">:</span><span class="w"> </span><span class="s2">"1.0.0"</span><span class="p">,</span><span class="w"> </span><span class="nl">"dependencies"</span><span class="p">:</span><span class="w"> </span><span class="p">{</span><span class="w"> </span><span class="nl">"express"</span><span class="p">:</span><span class="w"> </span><span class="s2">"^4.18.2"</span><span class="w"> </span><span class="p">}</span><span class="w"> </span><span class="p">}</span><span class="w"> </span></code></pre> </div> <h3> Tools: </h3> <ul> <li> <strong>npm audit:</strong> Checks for vulnerabilities in your Node.js packages.</li> <li> <strong>Yarn:</strong> Manages dependencies and provides security updates.</li> </ul> <h2> 5. Harden Your Environment </h2> <p><strong>Why it matters:</strong><br><br> Even with secure code, a misconfigured environment can expose sensitive data or allow unauthorized access.</p> <h3> How to do it: </h3> <ul> <li> <strong>Use environment variables for secrets:</strong> Never hardcode credentials.</li> <li><strong>Implement Web Application Firewalls (WAF).</strong></li> </ul> <h4> Example (Insecure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="err">#</span> <span class="nx">Exposing</span> <span class="nx">API</span> <span class="nx">keys</span> <span class="k">in</span> <span class="nx">code</span> <span class="kd">const</span> <span class="nx">apiKey</span> <span class="o">=</span> <span class="dl">'</span><span class="s1">sk-123456789abc</span><span class="dl">'</span><span class="p">;</span> </code></pre> </div> <h4> Example (Secure): </h4> <div class="highlight js-code-highlight"> <pre class="highlight javascript"><code><span class="err">#</span> <span class="nx">Using</span> <span class="nx">environment</span> <span class="nx">variables</span> <span class="nf">require</span><span class="p">(</span><span class="dl">'</span><span class="s1">dotenv</span><span class="dl">'</span><span class="p">).</span><span class="nf">config</span><span class="p">();</span> <span class="kd">const</span> <span class="nx">apiKey</span> <span class="o">=</span> <span class="nx">process</span><span class="p">.</span><span class="nx">env</span><span class="p">.</span><span class="nx">API_KEY</span><span class="p">;</span> </code></pre> </div> <h3> Tools: </h3> <ul> <li> <strong>Docker:</strong> For containerizing applications with secure configurations.</li> <li> <strong>AWS WAF:</strong> Protects web applications from common vulnerabilities.</li> </ul> <h2> Conclusion </h2> <p>Incorporating these five security checks into your development workflow can significantly reduce the riskof vulnerabilities in your codebase. Remember:</p> <ol> <li> <strong>Validate inputs</strong> - First line of defense</li> <li> <strong>Prevent SQL injection</strong> - Use prepared statements</li> <li> <strong>Handle errors safely</strong> - Don't leak sensitive info</li> <li> <strong>Keep dependencies updated</strong> - Patch known vulnerabilities</li> <li> <strong>Harden your environment</strong> - Secure your infrastructure</li> </ol> <p>While these manual checks are essential, automating them saves time and catches issues consistently. Tools like <strong>SAGE</strong> can run continuous security reviews on your codebase, flagging vulnerabilities before they reach production.</p> <p>Whatever tools you choose, the key is making security part of your daily workflow—not an afterthought.</p> <p><em>What security checks do you run before pushing code? Share your tips in the comments!</em></p> webdev programming security devops How to Secure Your Python Project (A Practical Guide) Eden Sages Sat, 06 Dec 2025 19:18:42 +0000 https://forem.com/eden_sages_f3cdc5d7c8d0/how-to-secure-your-python-project-a-practical-guide-1lfk https://forem.com/eden_sages_f3cdc5d7c8d0/how-to-secure-your-python-project-a-practical-guide-1lfk <p>Whether you're building an API, a CLI tool, or a machine learning pipeline, security vulnerabilities can sneak into your code without you realizing. Here's how to lock it down.</p> <h2> 1. Never Hardcode Secrets </h2> <p><strong>Bad:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">API_KEY</span> <span class="o">=</span> <span class="sh">"</span><span class="s">sk-1234567890abcdef</span><span class="sh">"</span> <span class="n">DATABASE_URL</span> <span class="o">=</span> <span class="sh">"</span><span class="s">postgres://admin:password123@db.example.com</span><span class="sh">"</span> </code></pre> </div> <p><strong>Good:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="kn">import</span> <span class="n">os</span> <span class="n">API_KEY</span> <span class="o">=</span> <span class="n">os</span><span class="p">.</span><span class="n">environ</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="sh">"</span><span class="s">API_KEY</span><span class="sh">"</span><span class="p">)</span> <span class="n">DATABASE_URL</span> <span class="o">=</span> <span class="n">os</span><span class="p">.</span><span class="n">environ</span><span class="p">.</span><span class="nf">get</span><span class="p">(</span><span class="sh">"</span><span class="s">DATABASE_URL</span><span class="sh">"</span><span class="p">)</span> </code></pre> </div> <p>Use <code>.env</code> files locally (with <code>python-dotenv</code>), but <strong>never commit them</strong>:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># .gitignore</span> .env <span class="k">*</span>.pem secrets.json </code></pre> </div> <h2> 2. Avoid SQL Injection </h2> <p><strong>Bad:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">query</span> <span class="o">=</span> <span class="sa">f</span><span class="sh">"</span><span class="s">SELECT * FROM users WHERE id = </span><span class="si">{</span><span class="n">user_input</span><span class="si">}</span><span class="sh">"</span> <span class="n">cursor</span><span class="p">.</span><span class="nf">execute</span><span class="p">(</span><span class="n">query</span><span class="p">)</span> </code></pre> </div> <p><strong>Good:</strong><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="n">cursor</span><span class="p">.</span><span class="nf">execute</span><span class="p">(</span><span class="sh">"</span><span class="s">SELECT * FROM users WHERE id = %s</span><span class="sh">"</span><span class="p">,</span> <span class="p">(</span><span class="n">user_input</span><span class="p">,))</span> </code></pre> </div> <p>Always use parameterized queries. ORMs like SQLAlchemy handle this automatically.</p> <h2> 3. Don't Use <code>eval()</code> or <code>exec()</code> </h2> <p>These execute arbitrary code. If user input ever reaches them, you're compromised.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight python"><code><span class="c1"># NEVER do this </span><span class="n">result</span> <span class="o">=</span> <span class="nf">eval</span><span class="p">(</span><span class="n">user_input</span><span class="p">)</span> </code></pre> </div> <p>If you need to parse data, use <code>json.loads()</code> or <code>ast.literal_eval()</code> for safe alternatives.</p> <h2> 4. Pin Your Dependencies </h2> <p>Unpinned dependencies can introduce vulnerabilities:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Bad: requirements.txt</span> requests flask <span class="c"># Good: requirements.txt</span> <span class="nv">requests</span><span class="o">==</span>2.31.0 <span class="nv">flask</span><span class="o">==</span>3.0.0 </code></pre> </div> <p>Run <code>pip freeze &gt; requirements.txt</code> and audit regularly.</p> <h2> 5. Use Security Linters </h2> <p>Add these to your CI pipeline:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>pip <span class="nb">install </span>bandit safety <span class="c"># Scan code for vulnerabilities</span> bandit <span class="nt">-r</span> your_project/ <span class="c"># Check dependencies for known CVEs</span> safety check </code></pre> </div> <h2> 6. Automate Security in CI/CD </h2> <p>Add a security scan to every pull request. Here's a simple GitHub Action:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight yaml"><code><span class="na">name</span><span class="pi">:</span> <span class="s">Security Scan</span> <span class="na">on</span><span class="pi">:</span> <span class="pi">[</span><span class="nv">push</span><span class="pi">,</span> <span class="nv">pull_request</span><span class="pi">]</span> <span class="na">jobs</span><span class="pi">:</span> <span class="na">security</span><span class="pi">:</span> <span class="na">runs-on</span><span class="pi">:</span> <span class="s">ubuntu-latest</span> <span class="na">steps</span><span class="pi">:</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">actions/checkout@v4</span> <span class="pi">-</span> <span class="na">uses</span><span class="pi">:</span> <span class="s">Edensages/sage-security-action@v1</span> </code></pre> </div> <p>This catches issues before they reach production.</p> <h2> 7. Quick Security Checklist </h2> <ul> <li>[ ] No secrets in code or git history</li> <li>[ ] SQL queries are parameterized</li> <li>[ ] No <code>eval()</code> or <code>exec()</code> with user input</li> <li>[ ] Dependencies pinned and audited</li> <li>[ ] Security linter in CI pipeline</li> <li>[ ] <code>.gitignore</code> covers sensitive files</li> </ul> <h2> Free Security Scan </h2> <p>Want to check your repo right now?</p> <p>👉 <strong><a href="https://scanner.edensages.org" rel="noopener noreferrer">scanner.edensages.org</a></strong> - Paste your GitHub URL for a free AI-powered security analysis.</p> <p><em>What security practices do you follow? Drop a comment below.</em></p> python security devops beginners